Manuale d’uso / di manutenzione del prodotto 5775 del fabbricante Xerox
Vai alla pagina of 50
Xerox W orkCentr e 5735/5740/5745/5755/5765/5775/5790 Informa tion Assur ance D isclosu re Paper Version 2 .0 Prepared by: Larry Kovnat Xerox Corporation 1350 Jefferson Road Rochester, New York 14623.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 2 of 50 ©2010 Xerox C orporation . All rights re served. Xerox an d the sph ere of connectiv ity desi gn are trademarks of Xerox Corporati on in the U nited States and /or other c ounties.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 3 of 50 1. INTRODUCTION .........................................................................................................
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 4 of 50 3.2. Login and Aut henticati on Method s .......... .............. ............... ............... ............... ......
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 5 of 50 1. Int roduct ion The WorkCentr e 5735/5740 /5745/57 55/5765/577 5/5790 multifunction systems are among the latest versions of Xerox copier and multi function devices for the general office.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 6 of 50 2. De vice Desc ripti on This product consists of an in pu t document handler and scanner, marking engine including paper path, controller, and user interface.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 7 of 50 P C I B u s Optical interface B u t t o n s a n d D i s p l a y P h y s i c a l e x t e r n a l i n t e r f a c e Button and TOE internal wiring (proprietary) Figure 2-2 System func tional block diagram 2.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 8 of 50 Security Function Subsystem Security Man agement Controller Graphical User Interface Table 1 Security Fu nctions allocated to Subsystems 2.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 9 of 50 Non-Volatile Memor y Type (Flash, E EPROM, etc) Size User Modifiable (.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 10 of 50 2.2.3. External Connections Figure 2-3 Back pa nel connections Interface Description / Usage FAX line 1, RJ-1 1 Supports F AX Modem T.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 11 of 50 USB Target port Direct-connect printing; Xerox diagnostic tool s (PSW and CAT) and Xerox copier assistant Table 5 USB Por ts 2.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 12 of 50 Volatile Memory Descr iption Type (SRAM, DRAM, etc) Size User Modifi .
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 13 of 50 Table 8 User Int erface memory components 2.6. Ma rking Engine (a lso known as t he Image Output Term inal or IOT) 2.6.1.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 14 of 50 Figure 2-4 Controlle r Operating System layer components.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 15 of 50 2.7.3. Network Prot ocols Figure 2-5 is an interface diagra m depicting the protocol stacks supported by th e device, annotated according to the DARPA model.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 16 of 50 Figure 2-6 IPv6 Net work Protocol Stack 2.8. Logic al Access 2.8.1. Network Prot ocols The supported network protocol s are listed in Appendix D and are implement ed to industry standard specifications (i.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 17 of 50 device-initiated operations (like scanning) cannot assume the existence of the tunnel unles s a print job (or other client initiated action) has been previou sly run since the last boot at either end of the connectio n.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 18 of 50 2.8.2.4. Port 80, H TTP The embedded web pages com municate to the ma.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 19 of 50 2.8.2.5. Port 88, K erberos This port is only open when the device is.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 20 of 50 2.8.2.7. Ports 137, 138, 139, NETBIOS For print jobs, these ports suppor t the submission of files for printing as well as support Networ k Authentication through SMB.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 21 of 50 2.8.2.13. Port 515, LP R This is the standard LPR printing port, whi ch only supports IP printing.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 22 of 50 3. Sys tem Acc ess 3.1. Auth entication Mode l The authenti cation model allows for both l ocal and netw ork authentic ation and a uthorization.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 23 of 50 Figure 3-1 Authe ntication and Authorization schematic.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 24 of 50 3.2. Login and Authentic ation Methods There are a number of m ethods for different types of users to be authentica ted.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 25 of 50 2) The Domain Contr oller responds back to the device whether or not the user was successfu lly authenticat ed. If (2) is succ essful, steps 3 – 5 proceed as described in steps 4 – 6 of th e Kerberos s ection.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 26 of 50 3) The devi ce sends an authe ntication request di rectly to the Domain Controller thr ough th e router using th e IP addres s of the Doma in Control ler.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 27 of 50 3.4. Dia gnostics 3.4.1. Service [All product configurations] To access onb oard diagn ostics from th e local user in terface, Xerox service representa tives must enter a unique 4-digi t password.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 28 of 50 3.4.4.1. Access The Xerox S ervice Technici an must be a uthenticated t wice: 1.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 29 of 50 3) T he PS W wil l s end a req uest f or Dia gno st ic ser vic e a nd a p ass word.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 30 of 50 3.4.5. Summ ary As stated ab ove, accessib ility of custom er documents, fi les or network resources is i mpossible via the PSW.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 31 of 50 4. Sec urity As pects of Select ed Featu res 4.1. Audit Log The device mai ntains a sec urity audit l og. Recordin g of securit y audit log data ca n be e nabled or disabl ed by the SA.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 32 of 50 Event ID Event d escription Entry Data 8 IFAX Job name User Name Comp.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 33 of 50 Event ID Event d escription Entry Data 22 USB Thumbdrive UserName Dev.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 34 of 50 Event ID Event d escription Entry Data 37 SSL UserName Device name Device serial number Completion status (Enabled/Disabled).
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 35 of 50 Event ID Event d escription Entry Data 53 CPSR Backup File Name User .
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 36 of 50 Event ID Event d escription Entry Data 2 System shutdown Device name .
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 37 of 50 Event ID Event d escription Entry Data 13 Efax Job name User Name Com.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 38 of 50 Event ID Event d escription Entry Data 29 Network User Login UsereNam.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 39 of 50 Event ID Event d escription Entry Data 44 SW upgrade Device name Devi.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 40 of 50 On demand, th e SA will be a ble to downloa d a report tha t shows acti vity for all of the users. The SA can add, modify or remove us ers and their a llocations at any point.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 41 of 50 4.5.1. Alg orithm The overwri te mechanism for both IIO a nd ODIO con forms to the U.S. Department o f Defense D irective 5200.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 42 of 50 5. Res ponses to Know n Vulne rabiliti es 5.1. Sec urity @ Xerox (www.xerox. com/security) Xerox maintains an evergr een public web page that contains the latest security information pertaining to its products.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 43 of 50 6. APP ENDICES 6.1. App endix A – Abbre viations API Application Programming Interface AMR Automatic Meter Reads ASIC Application-Specific Integrated Circuit.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 44 of 50 NVRAM Non-Volatile Random Access Memor y NVM Non-Volatile Memory ODIO.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 45 of 50 6.2. App endix B – Supp orted MIB Objects NOTES : (1) The number of obje cts shown p er MIB group r epresents the number of obje cts defined b y the IETF standard for that MI B group.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 46 of 50 RFC 1759 - Printe r MIB Group WorkCentre RFC 1213 - Syst em group sup.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 47 of 50 RFC 1213 - MIB-II for TCP/IP gr oup WorkCentre Transmission group [ 0.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 48 of 50 6.3. App endix C –Stan dards Controller Har dware PCI Specification (PCI Local Bus Specification Revision 2.1) 100 Megabit Ethernet (IEEE 802.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 49 of 50 Function RFC/Standard Document Printing Application (DPA ) 10175 Appl.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 50 of 50 6.4. App endix E – Referen ces Kerberos FAQ http://www.nr l.navy.mil/CCS/ people/kenh/k erberos- faq.html IP port numb ers http://www.
Un punto importante, dopo l’acquisto del dispositivo (o anche prima di acquisto) è quello di leggere il manuale. Dobbiamo farlo per diversi motivi semplici:
Se non hai ancora comprato il Xerox 5775 è un buon momento per familiarizzare con i dati di base del prodotto. Prime consultare le pagine iniziali del manuale d’uso, che si trova al di sopra. Dovresti trovare lì i dati tecnici più importanti del Xerox 5775 - in questo modo è possibile verificare se l’apparecchio soddisfa le tue esigenze. Esplorando le pagine segenti del manuali d’uso Xerox 5775 imparerai tutte le caratteristiche del prodotto e le informazioni sul suo funzionamento. Le informazioni sul Xerox 5775 ti aiuteranno sicuramente a prendere una decisione relativa all’acquisto.
In una situazione in cui hai già il Xerox 5775, ma non hai ancora letto il manuale d’uso, dovresti farlo per le ragioni sopra descritte. Saprai quindi se hai correttamente usato le funzioni disponibili, e se hai commesso errori che possono ridurre la durata di vita del Xerox 5775.
Tuttavia, uno dei ruoli più importanti per l’utente svolti dal manuale d’uso è quello di aiutare a risolvere i problemi con il Xerox 5775. Quasi sempre, ci troverai Troubleshooting, cioè i guasti più frequenti e malfunzionamenti del dispositivo Xerox 5775 insieme con le istruzioni su come risolverli. Anche se non si riesci a risolvere il problema, il manuale d’uso ti mostrerà il percorso di ulteriori procedimenti – il contatto con il centro servizio clienti o il servizio più vicino.